SDForum Security Event: Are Clouds Secure? Security & Privacy December 7, 2009

Topic: Are clouds secure? security, privacy and compliance in clouds

Cloud computing has emerged as a popular way for corporations to save money that would otherwise go into their IT infrastructure. However, along with the promise of cloud computing there has also been considerable skepticism about the type and extent of security and privacy that these services provide.

This session will address issues that affect any organization preparing to use cloud computing as an option. The authors of Cloud Security and Privacy address the security challenges, the steps you need to take to ensure your web applications are secure and your data is safe, and regulatory issues such as audit and compliance. With few details about such concerns provided to date, the obvious question to information security practitioners is, "what do those concerns really mean to organizations?" This talk will review the SPI delivery model (software-as-a-service - SaaS, platform-as-a-service - PaaS, and infrastructure-as-a-service - IaaS) and methodically explore security, privacy and compliance in public clouds offerings:

The speakers will also discuss privacy, audit, and compliance implications of the security provided by public clouds. Additionally, we will discuss security-as-a-service - that is, security delivered as a service through the cloud (as opposed to the security of other services (i.e., SaaS, PaaS, and IaaS) provided by cloud service providers).

Speaker: Subra Kumaraswamy CISSP, has more than 18 years of engineering and management experience encompassing Information Security, Internet and Ecommerce Technologies. He is currently leading a Security Access Mgmt program in the IT Security office at Sun. Subra's past roles include IT Architect, Software Engineer, Security Consultant at Accenture, Netscape, Lycos and Sun.

Official Website: http://www.sdforum.org/SecuritySIG